General

  • Target

    bacc0a124b0e82dcf472825b2a7d56ce853c627f23706cfe0696b6100f907914.exe

  • Size

    2.6MB

  • Sample

    241113-ry7n5axjhm

  • MD5

    d3b3b87558835e16047cd93f6a775f50

  • SHA1

    ba998b647ba8d83211f3c17f6fdee25a4d244268

  • SHA256

    bacc0a124b0e82dcf472825b2a7d56ce853c627f23706cfe0696b6100f907914

  • SHA512

    fd8c0071ef6461c6130dc3ca8f9e1655ed0d3b1ca8cf2bfaf7e0ff2a73fc1ad505a4e3ca060aa4de01a45d7ca0e70f15fbd536192bd6220c5c3a62e80df904c8

  • SSDEEP

    49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bSG:sxX7QnxrloE5dpUpFbP

Malware Config

Targets

    • Target

      bacc0a124b0e82dcf472825b2a7d56ce853c627f23706cfe0696b6100f907914.exe

    • Size

      2.6MB

    • MD5

      d3b3b87558835e16047cd93f6a775f50

    • SHA1

      ba998b647ba8d83211f3c17f6fdee25a4d244268

    • SHA256

      bacc0a124b0e82dcf472825b2a7d56ce853c627f23706cfe0696b6100f907914

    • SHA512

      fd8c0071ef6461c6130dc3ca8f9e1655ed0d3b1ca8cf2bfaf7e0ff2a73fc1ad505a4e3ca060aa4de01a45d7ca0e70f15fbd536192bd6220c5c3a62e80df904c8

    • SSDEEP

      49152:sxX7665YxRVplZzSKntlGIiT+HvRdpcAHSjpjK3LBaB/bSG:sxX7QnxrloE5dpUpFbP

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks